FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
msingh_FTNT
Staff
Staff
Article Id 202800
Description This article describes memory-related debugs. Depending on which process is consuming the highest memory we might need to collect more debugs for that particular process (IPS, WAD). This data should be collected from the time unit that is consuming high memory
Scope FOS 6. x, 7.x
Solution

# get system status: Displays versions of firmware and FortiGuard engines, and other system information.

 

# get system performance status ( Run for 5 times): Displays CPU and memory states, average network usage, average sessions, and session setup rate, the virus caught, IPS attacks blocked, and uptime

 

# di sys top 2 50 (Run for 30 Sec and CTRL C to stop): Show top processes information. You can use the di sys top command from the FortiOS CLI to list the processes running on your FortiGate unit. The command also displays information about each process.

 

# di sys top-all: Show top threads information.

 

# diagnose hardware sys conserve: Diagnose command to aid in conserver mode issues, introduced in 5.6

 

# diagnose hardware sysinfo memory: Display system memory information

 

# diagnos hardware sysinfo slab: Display memory allocation information

 

# diagnose sys top-sockmem : Display processes with the most used socket memory

 

# diagnose sys top-mem :Display processes with the most used memory (default 5 processes)

 

# diagnose sys top-fd : Display processes with the most active file descriptors (default 5 processes)

 

# diagnose sys print-conserve-info : Print all conserve related info.

 

# get hardware memory: Displays the memory stats

 

# diagnose autoupdate versions : Update object versions

 

# diagnose sys session full-stat : Its going to display the session stat(i.e ESTABLISHED state ,SYN_SENT state etc)

 

# diagnose debug crashlog read : To get the Crash log info

 

Note: Above debugs needs to be also collected from the time system is stable for the comparison

 

Contributors